$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: nBVEypSsuUyEQ2/j61rOCxVP6iFlgHJWlV5F+8F2UEY= Subject key identifier: FD:25:29:6F:04:91:07:7C:C5:7B:4B:AA:71:81:DA:0D:57:6E:EF:B0 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 088D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 07F2 Signing time: Tue 04 Nov 2025 21:44:45 +0000 Manifest this update: Tue 04 Nov 2025 21:44:45 +0000 Manifest next update: Tue 11 Nov 2025 21:44:45 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: NEUkWcJV7EcMg+twzDgny9CsDi2YLoc6sxjH+8wug9I=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Nov 4 21:44:45 2025 GMT Not After : Nov 11 21:44:45 2025 GMT Subject: CN=690a73cd-df11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:be:65:19:95:f2:d9:be:48:1e:19:1d:22:62: 9e:40:1a:fd:c4:38:36:3d:a0:8c:ad:3d:e8:6f:20: c0:83:bb:4b:fd:a6:db:a7:bd:d4:bc:8d:fc:83:fa: 85:31:08:26:40:bf:8c:bc:d5:01:78:1a:3d:3f:90: c4:55:07:e3:ab:a5:d7:57:0f:8b:c9:35:ae:31:d9: 20:0d:78:8b:5b:8e:c8:ec:55:37:1d:3c:49:da:65: 58:4b:56:27:f2:ba:ad:dc:95:d8:af:2a:bc:df:f7: be:fb:5d:b1:a6:ec:af:8e:a1:21:a5:94:1a:3d:7f: 89:cb:1a:61:08:cd:ea:dc:2d:ed:d7:05:65:70:d0: b4:9b:03:7a:8e:5d:7b:b5:8a:c5:ce:ce:a1:17:78: 38:f3:56:8e:da:25:9e:3e:12:45:1f:45:f3:44:bb: 01:2b:57:d7:df:42:1d:c7:e4:00:1d:fa:bd:0d:0d: 5e:f5:ce:10:ab:05:87:f8:0e:7d:00:8d:9d:20:7d: e2:20:57:7b:44:6e:0f:7b:e0:df:d3:24:af:0f:57: ee:3d:49:1c:58:49:3b:82:f4:f5:a7:0a:82:d8:0d: cf:5e:51:29:3d:78:5d:2d:ed:e4:3a:35:65:43:27: 8b:8d:08:e2:b4:e7:98:89:12:d9:72:d5:0f:23:b5: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:25:29:6F:04:91:07:7C:C5:7B:4B:AA:71:81:DA:0D:57:6E:EF:B0 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:b0:a1:f8:b9:f2:2a:f5:da:c8:62:b4:fd:cf:3f:e5:7f:84: ed:29:b2:cf:37:0f:fe:e9:5b:34:60:6e:c5:c2:72:9b:43:ce: bc:da:36:9d:ff:d9:d7:91:86:99:a6:10:ad:88:31:70:ba:46: 11:ca:65:ef:8d:7e:7a:90:48:b6:9e:a7:30:c2:e5:52:9f:61: af:1d:c4:bc:1f:90:c0:62:31:01:1a:3f:ad:2c:8a:08:dc:df: 60:c7:56:d3:89:cf:39:25:d3:56:db:de:e0:cc:85:64:00:eb: 4a:e7:6f:9f:40:70:12:d6:88:9c:85:49:c7:30:1d:02:98:45: d5:59:ee:40:c7:82:03:20:a5:71:f3:6c:f2:f9:21:37:22:8d: 2c:45:0d:2f:8c:3a:d2:36:b1:e7:b4:a5:f6:b3:5c:23:8f:6b: 47:5b:08:47:82:d0:f3:3a:38:16:26:82:e7:35:26:1f:e1:6c: a5:ab:70:ff:83:6c:2e:4a:67:b0:88:98:f9:28:4f:26:b9:a3: 57:1d:be:b7:b8:c7:07:a7:06:76:50:d2:58:68:36:2d:09:9f: 51:c8:5e:c3:31:22:6b:c8:f6:04:14:2b:bb:b2:60:82:ad:26: ad:2b:1c:1c:eb:af:2e:7b:a4:b9:96:51:93:7c:a5:67:93:f2: ea:69:23:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUxMTA0MjE0NDQ1WhcNMjUxMTExMjE0NDQ1WjAYMRYwFAYD VQQDEw02OTBhNzNjZC1kZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb5lGZXy2b5IHhkdImKeQBr9xDg2PaCMrT3obyDAg7tL/abbp73UvI38g/qF MQgmQL+MvNUBeBo9P5DEVQfjq6XXVw+LyTWuMdkgDXiLW47I7FU3HTxJ2mVYS1Yn 8rqt3JXYryq83/e++12xpuyvjqEhpZQaPX+JyxphCM3q3C3t1wVlcNC0mwN6jl17 tYrFzs6hF3g481aO2iWePhJFH0XzRLsBK1fX30Idx+QAHfq9DQ1e9c4QqwWH+A59 AI2dIH3iIFd7RG4Pe+Df0ySvD1fuPUkcWEk7gvT1pwqC2A3PXlEpPXhdLe3kOjVl QyeLjQjitOeYiRLZctUPI7VTQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0lKW8E kQd8xXtLqnGB2g1Xbu+wMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJsKH4ufIq9drIYrT9zz/lf4TtKbLPNw/+6Vs0YG7FwnKbQ8682jad /9nXkYaZphCtiDFwukYRymXvjX56kEi2nqcwwuVSn2GvHcS8H5DAYjEBGj+tLIoI 3N9gx1bTic85JdNW297gzIVkAOtK52+fQHAS1oichUnHMB0CmEXVWe5Ax4IDIKVx 82zy+SE3Io0sRQ0vjDrSNrHntKX2s1wjj2tHWwhHgtDzOjgWJoLnNSYf4Wylq3D/ g2wuSmewiJj5KE8muaNXHb63uMcHpwZ2UNJYaDYtCZ9RyF7DMSJryPYEFCu7smCC rSatKxwc668ue6S5llGTfKVnk/LqaSP4 -----END CERTIFICATE-----Generated at Wed Nov 5 13:27:36 2025 by rpki-client